UPDATE: Luckystrike 2.0!

Posted: 2 years ago by @pentestit2966 viewsUpdated: November 3, 2017 at 12:27 am

My first post regarding this malicious Microsoft Office document generator was about an older version. However a few hours ago, an update was released – Luckystrike 2.0! Major highlights for this awesome release include full support for Microsoft Word in addition to a new COM scriptlet payload and Excel DDE infection support. Along with this, support for Invoke-Obfuscation is inbuilt!

What is Luckystrike?

Luckystrike is an open source script that helps you create malicious Microsoft Office documents using PowerShell’s ability to interface with COM objects.

Changes made to Luckystrike 2.0:

Full support for Microsoft Word output (.doc), as well as Word-based template storage.

Support for Invoke-Obfuscation of PowerShell based payloads as well as PowerShell Shell commands (e.g. powershell -nop -enc …)

New Payload Type: COM Scriptlets. Receives a URL that points to your scriptlet and can fire it via the following Infection Types (based on amazing @subTee research):

Pubprn.vbs – Example

Regsrv32 – Example

Excel DDE Infection Type added: Research. Note that your first Shell Command payload word is the command run by DDE.

A truckload of bug fixes!

The Luckystrike-API switch allows it to be scriptable. See the Pester script for examples.

Another relevant update is that the author has switched his GitHub repository and hence you will not see an upgrade prompt with the older version. If you have made customizations which you would like to keep, let the old repository be and check out the new code in a different directory. However, if you want to get the goodness, without checking out the new directory but using the inbuilt updater, follow the instructions that the author mentions here. Please read the Wiki before you install this new version.

Featured Post

Kali Linux 2019.1 is the latest Kali Linux release. This is the first 2019 release, which comes after Kali Linux 2018.4, that was made available in the month of October. This new release includes all patches, fixes, updates, and improvements since the last release – Kali Linux 2018.3, including a shiny new Linux kernel versionRead more about UPDATE: Kali Linux 2019.1 Release!